Skip to main content

There has been a spate of fraudulent document sharing emails circulating within the legal community that look like they are legitimate emails from other law firms.

What's on this page?

What is happening

They ask the receiver (you) to access documents by clicking on a link to a document sharing platform such as Skyfish or Dropbox.

These emails won’t necessarily be caught by anti-spam filters because they are coming from legitimate law firm email accounts that have been compromised and accessed by cyber criminals.

If you click on the link you will be asked to put in your email credentials – username and password. By doing this you will be giving the cyber-criminals access to your email account. Access to your email account allows the criminals to monitor your correspondence silently and look for cyber fraud opportunities.

What to do if you receive an email asking to share files

  1. Don’t just click on the link– even if it looks legitimate as it may be from a compromised account.
  2. Phone the sender to confirm they have sent the email to you and what information the file sharing platform actually needs from you before you decide whether to open the link in the email.
  3. If the purported sender knows nothing about the email they should be advised to report it to their IT security managers immediately.
  4. The recipient should also report the email to their IT security managers.

If you have already opened the link and entered your email account credentials, your email account has probably been compromised. You need to immediately investigate the compromise and take steps to contain the risk of a data breach. Implement your cyber security incident response plan.

Notify LPLC of any compromise to your IT system as there may be a risk of claims arising and advice and steps we can help you with.

How to safeguard your system

Enable multifactor authentication (MFA) immediately as a safeguard against future attempts. Even if the cyber-criminals now have your username and password they won’t be able to log in to your email account from another device if you have MFA in place.

For more detailed information about cyber hygiene practices and how to reduce your cyber risk see our new Cyber Security Guide for Lawyers and our other cyber resources.

Download a pdf of this LPLC Alert

File sharing email scam multifactor authentication will help protect you.pdf

(PDF, 124.84 KB)
Download File sharing email scam multifactor authentication will help protect you.pdf

Latest News & Alerts

All News & Alerts
News

Joint statement on behalf of the Victorian legal profession on the tragic events at Bondi Beach

Where to get help 15 Dec 25

We are united in our shock and sorrow following the horrific attacks that took place at Bondi Beach yesterday evening.

Our thoughts are with the victims, their families and all those who have been tragically affected by this abhorrent violence. This has particularly impacted the Jewish community of Sydney and across Australia, a community that is an integral and cherished part of our multicultural society.

We stand in solidarity with the Jewish community and all who have been affected by this senseless violence. Everyone has the right to safety, security and freedom from fear.

We condemn these acts of antisemitism, extremism and violence in the strongest possible terms. We reaffirm our commitment to the rule of law, which underpins the safety and security of all in Australia.

We are united in our resolve that such acts of violence and hate will not undermine the values of inclusion and fundamental freedoms, including of religion and other rights, which define our community.

Learn more
News

Holiday Closure Periods

10 Dec 25

As the year draws to a close, we would like to thank our insured practitioners and stakeholders for their continued trust and engagement. We appreciate the important work you do and the role we play in supporting you throughout the year.

Learn more
News

LPLC Annual Report 2024-2025

17 Nov 25

The LPLC is proud to present the Annual Report for 2024-2025. This high was tabled in the Victorian Parliament on 12th of November 2025.

Learn more
All News & Alerts
TOP